Fedora™ as a Kerberos/NFSv4 Client

Fedora™ as a Kerberos/NFSv4 Client
		Next

Setting up Fedora™11 (i686, KDE) for UW (NetID) Kerberos authentication and automounted NFSv4 home directories

Brian High

Version 0.0.3

Table of Contents

Obtain DNS Records
Installing Fedora™
Initial Setup and Updates
Configure Networking
Configure Kerberos
Kerberos for Local Accounts
Configure LDAP for Network Accounts
Configure Additional Kerberos Realm for NFSv4
Install SASL GSSAPI
Disable SELinux
Add Kerberos Principals for NFSv4
Configure idmapd, NFSv4, and autofs
Final Testing

Abstract

This document describes how to configure a Fedora™ 11 system as a Kerberos client using UW NetID for authentication, departmental LDAP for authorization, and departmental NFSv4 for automounting home directories.

Obtain DNS Records

Important

Before starting the installation, you will need a hostname and static IP address. The DNS records must provide both forward (A) and reverse (PTR) lookups. This will be necessary in order for the system to function properly as an NFSv4 client.

If you will be using this system on the UW network, you may request an address assignment from UW Technology. We recommend an address on the 172 network.